Mercurial > hg > fapweb
annotate usrlogin.php @ 311:2f46b6254ff2
We'll be checking key validity in login phase, so start working on that.
author | Matti Hamalainen <ccr@tnsp.org> |
---|---|
date | Tue, 26 Nov 2013 23:36:11 +0200 |
parents | 6610311ac48e |
children | 100d9f7f9dde |
rev | line source |
---|---|
110 | 1 <? |
155
5b92f130ba87
Add copyright header blurbs.
Matti Hamalainen <ccr@tnsp.org>
parents:
129
diff
changeset
|
2 // |
5b92f130ba87
Add copyright header blurbs.
Matti Hamalainen <ccr@tnsp.org>
parents:
129
diff
changeset
|
3 // FAPWeb Simple Demoparty System |
5b92f130ba87
Add copyright header blurbs.
Matti Hamalainen <ccr@tnsp.org>
parents:
129
diff
changeset
|
4 // Administration interface session login handler |
5b92f130ba87
Add copyright header blurbs.
Matti Hamalainen <ccr@tnsp.org>
parents:
129
diff
changeset
|
5 // (C) Copyright 2012-2013 Tecnic Software productions (TNSP) |
5b92f130ba87
Add copyright header blurbs.
Matti Hamalainen <ccr@tnsp.org>
parents:
129
diff
changeset
|
6 // |
110 | 7 $sessionType = "user"; |
175
8df523e6326a
User require_once instead of require.
Matti Hamalainen <ccr@tnsp.org>
parents:
156
diff
changeset
|
8 require_once "mconfig.inc.php"; |
8df523e6326a
User require_once instead of require.
Matti Hamalainen <ccr@tnsp.org>
parents:
156
diff
changeset
|
9 require_once "msite.inc.php"; |
8df523e6326a
User require_once instead of require.
Matti Hamalainen <ccr@tnsp.org>
parents:
156
diff
changeset
|
10 require_once "msession.inc.php"; |
110 | 11 |
156 | 12 // |
13 // Initialize | |
14 // | |
110 | 15 stSetupCacheControl(); |
16 | |
17 if (!stConnectSQLDB()) | |
18 die("Could not connect to SQL database."); | |
19 | |
20 stReloadSettings(); | |
21 | |
22 | |
156 | 23 // |
24 // Authenticate | |
25 // | |
110 | 26 $gotoPage = stGetRequestItem("goto", FALSE); |
306
6610311ac48e
Improve user login handling.
Matti Hamalainen <ccr@tnsp.org>
parents:
304
diff
changeset
|
27 $errorPage = stGetRequestItem("error", FALSE); |
110 | 28 $password = stGetRequestItem("key", FALSE); |
306
6610311ac48e
Improve user login handling.
Matti Hamalainen <ccr@tnsp.org>
parents:
304
diff
changeset
|
29 $error = 0; |
110 | 30 |
311
2f46b6254ff2
We'll be checking key validity in login phase, so start working on that.
Matti Hamalainen <ccr@tnsp.org>
parents:
306
diff
changeset
|
31 $sql = stPrepareSQL("SELECT * FROM votekeys WHERE key=%s", $password); |
2f46b6254ff2
We'll be checking key validity in login phase, so start working on that.
Matti Hamalainen <ccr@tnsp.org>
parents:
306
diff
changeset
|
32 if (($key = stFetchSQL($sql)) !== false) |
110 | 33 { |
311
2f46b6254ff2
We'll be checking key validity in login phase, so start working on that.
Matti Hamalainen <ccr@tnsp.org>
parents:
306
diff
changeset
|
34 switch (stGetSetting("voteKeyMode")) |
2f46b6254ff2
We'll be checking key validity in login phase, so start working on that.
Matti Hamalainen <ccr@tnsp.org>
parents:
306
diff
changeset
|
35 { |
2f46b6254ff2
We'll be checking key validity in login phase, so start working on that.
Matti Hamalainen <ccr@tnsp.org>
parents:
306
diff
changeset
|
36 case VOTE_ACTIVATE: |
2f46b6254ff2
We'll be checking key validity in login phase, so start working on that.
Matti Hamalainen <ccr@tnsp.org>
parents:
306
diff
changeset
|
37 break; |
2f46b6254ff2
We'll be checking key validity in login phase, so start working on that.
Matti Hamalainen <ccr@tnsp.org>
parents:
306
diff
changeset
|
38 |
2f46b6254ff2
We'll be checking key validity in login phase, so start working on that.
Matti Hamalainen <ccr@tnsp.org>
parents:
306
diff
changeset
|
39 case VOTE_ASSIGN: |
2f46b6254ff2
We'll be checking key validity in login phase, so start working on that.
Matti Hamalainen <ccr@tnsp.org>
parents:
306
diff
changeset
|
40 break; |
2f46b6254ff2
We'll be checking key validity in login phase, so start working on that.
Matti Hamalainen <ccr@tnsp.org>
parents:
306
diff
changeset
|
41 } |
2f46b6254ff2
We'll be checking key validity in login phase, so start working on that.
Matti Hamalainen <ccr@tnsp.org>
parents:
306
diff
changeset
|
42 |
129 | 43 if (!stSessionStart(SESS_USER, $password, "userTimeout")) |
110 | 44 { |
45 error_log("User session AUTH LOGIN failed (session setup)"); | |
306
6610311ac48e
Improve user login handling.
Matti Hamalainen <ccr@tnsp.org>
parents:
304
diff
changeset
|
46 $error = 2; |
110 | 47 } |
48 else | |
311
2f46b6254ff2
We'll be checking key validity in login phase, so start working on that.
Matti Hamalainen <ccr@tnsp.org>
parents:
306
diff
changeset
|
49 { |
2f46b6254ff2
We'll be checking key validity in login phase, so start working on that.
Matti Hamalainen <ccr@tnsp.org>
parents:
306
diff
changeset
|
50 stSetSessionItem("key_id", $key["id"]); |
110 | 51 stSetSessionItem("mode", stGetRequestItem("mode", "error")); |
311
2f46b6254ff2
We'll be checking key validity in login phase, so start working on that.
Matti Hamalainen <ccr@tnsp.org>
parents:
306
diff
changeset
|
52 } |
110 | 53 } |
54 else | |
55 { | |
56 error_log("User session AUTH LOGIN failed (password)"); | |
306
6610311ac48e
Improve user login handling.
Matti Hamalainen <ccr@tnsp.org>
parents:
304
diff
changeset
|
57 $error = 1; |
110 | 58 } |
59 | |
306
6610311ac48e
Improve user login handling.
Matti Hamalainen <ccr@tnsp.org>
parents:
304
diff
changeset
|
60 $nextPage = ($error != 0) ? $errorPage : $gotoPage; |
6610311ac48e
Improve user login handling.
Matti Hamalainen <ccr@tnsp.org>
parents:
304
diff
changeset
|
61 |
311
2f46b6254ff2
We'll be checking key validity in login phase, so start working on that.
Matti Hamalainen <ccr@tnsp.org>
parents:
306
diff
changeset
|
62 header("Location: ". |
2f46b6254ff2
We'll be checking key validity in login phase, so start working on that.
Matti Hamalainen <ccr@tnsp.org>
parents:
306
diff
changeset
|
63 ($nextPage !== FALSE ? $nextPage : stGetSetting("defaultPage")). |
306
6610311ac48e
Improve user login handling.
Matti Hamalainen <ccr@tnsp.org>
parents:
304
diff
changeset
|
64 ($error ? "?error=".$error : ""); |
110 | 65 ?> |